Examples of AdminGroupData

Examples of org.ejbca.core.ejb.authorization.AdminGroupData

89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
        // certificate, such as batch tool etc
        if (AdminGroupData.findByGroupName(entityManager, AdminGroup.DEFAULTGROUPNAME) == null) {
            LOG.debug("initialize: FinderEx, add default group.");
            // Add Default Special Admin Group
            try {
                final AdminGroupData agdl = new AdminGroupData(Integer.valueOf(findFreeAdminGroupId()), AdminGroup.DEFAULTGROUPNAME);
                entityManager.persist(agdl);

                final ArrayList<AdminEntity> adminentities = new ArrayList<AdminEntity>();
                adminentities.add(new AdminEntity(AdminEntity.SPECIALADMIN_BATCHCOMMANDLINEADMIN));
                adminentities.add(new AdminEntity(AdminEntity.SPECIALADMIN_CACOMMANDLINEADMIN));
                adminentities.add(new AdminEntity(AdminEntity.SPECIALADMIN_RAADMIN));
                adminentities.add(new AdminEntity(AdminEntity.SPECIALADMIN_INTERNALUSER));
                agdl.addAdminEntities(entityManager, adminentities);

                final ArrayList<AccessRule> accessrules = new ArrayList<AccessRule>();
                accessrules.add(new AccessRule(AccessRulesConstants.ROLE_ADMINISTRATOR, AccessRule.RULE_ACCEPT, true));
                accessrules.add(new AccessRule(AccessRulesConstants.ROLE_SUPERADMINISTRATOR, AccessRule.RULE_ACCEPT, false));

                accessrules.add(new AccessRule(AccessRulesConstants.REGULAR_CAFUNCTIONALTY, AccessRule.RULE_ACCEPT, true));
                accessrules.add(new AccessRule(AccessRulesConstants.REGULAR_RAFUNCTIONALITY, AccessRule.RULE_ACCEPT, true));
                accessrules.add(new AccessRule(AccessRulesConstants.REGULAR_LOGFUNCTIONALITY, AccessRule.RULE_ACCEPT, true));
                accessrules.add(new AccessRule(AccessRulesConstants.REGULAR_SYSTEMFUNCTIONALITY, AccessRule.RULE_ACCEPT, true));
                accessrules.add(new AccessRule(AccessRulesConstants.HARDTOKEN_HARDTOKENFUNCTIONALITY, AccessRule.RULE_ACCEPT, true));
                accessrules.add(new AccessRule(AccessRulesConstants.CABASE, AccessRule.RULE_ACCEPT, true));
                accessrules.add(new AccessRule(AccessRulesConstants.ENDENTITYPROFILEBASE, AccessRule.RULE_ACCEPT, true));

                agdl.addAccessRules(entityManager, accessrules);

                authTreeSession.signalForAuthorizationTreeUpdate();
            } catch (Exception ce) {
                LOG.error("initialize continues after Exception: ", ce);
            }
        }
        // Add Public Web Group
        final AdminGroupData agl = AdminGroupData.findByGroupName(entityManager, AdminGroup.PUBLICWEBGROUPNAME);
        if (agl == null) {
            LOG.debug("initialize: Can't find public web group");
            try {
                final AdminGroupData agdl = new AdminGroupData(Integer.valueOf(findFreeAdminGroupId()), AdminGroup.PUBLICWEBGROUPNAME);
                entityManager.persist(agdl);
                addDefaultPublicWebGroupRules(agdl);
                authTreeSession.signalForAuthorizationTreeUpdate();
            } catch (Exception ce) {
                LOG.error("initialize continues after Exception: ", ce);
View Full Code Here

Examples of org.ejbca.core.ejb.authorization.AdminGroupData

143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
  
    @Override
    public void addAccessRules(final Admin admin, final String admingroupname, final Collection<AccessRule> accessrules) {
        if (!admingroupname.equals(AdminGroup.DEFAULTGROUPNAME)) {
            try {
                final AdminGroupData agd = AdminGroupData.findByGroupName(entityManager, admingroupname);
                if (agd == null) {
                    throw new FinderException("Could not find admin group " + admingroupname);
                }
                agd.addAccessRules(entityManager, accessrules);
                authTreeSession.signalForAuthorizationTreeUpdate();
                final String msg = INTRES.getLocalizedMessage("authorization.accessrulesadded", admingroupname);
                logSession.log(admin, LogConstants.INTERNALCAID, LogConstants.MODULE_RA, new java.util.Date(), null, null,
                        LogConstants.EVENT_INFO_EDITEDADMINISTRATORPRIVILEGES, msg);
            } catch (Exception e) {
View Full Code Here

Examples of org.ejbca.core.ejb.authorization.AdminGroupData

167
168
169
170
171
172
173
174
175
176
177
    public void addAdminGroup(final Admin admin, final String admingroupname) throws AdminGroupExistsException {
        if (!(admingroupname.equals(AdminGroup.DEFAULTGROUPNAME))) {
            boolean success = false;
            if (AdminGroupData.findByGroupName(entityManager, admingroupname) == null) {
                try {
                    entityManager.persist(new AdminGroupData(Integer.valueOf(findFreeAdminGroupId()), admingroupname));
                    success = true;
                } catch (Exception e) {
                    final String msg = INTRES.getLocalizedMessage("authorization.erroraddadmingroup", admingroupname);
                    LOG.error(msg, e);
                }
View Full Code Here

Examples of org.ejbca.core.ejb.authorization.AdminGroupData

191
192
193
194
195
196
197
198
199
200
201
202
203
   
    @TransactionAttribute(TransactionAttributeType.SUPPORTS)
    @Override
    public boolean existsAdministratorInGroup(final Admin admin, final int admingrouppk) {
        boolean returnval = false;
        final AdminGroupData agdl = AdminGroupData.findByPrimeKey(entityManager, Integer.valueOf(admingrouppk));
        if (agdl != null) {
            for(AdminEntity ae : agdl.getAdminGroup().getAdminEntities()) {    
                returnval = returnval || ae.match(admin.getAdminInformation());
            }
        }
        return returnval;
    }
View Full Code Here

Examples of org.ejbca.core.ejb.authorization.AdminGroupData

204
205
206
207
208
209
210
211
212
213
214
215
216
   
    @TransactionAttribute(TransactionAttributeType.SUPPORTS)
    @Override
    public AdminGroup getAdminGroup(final Admin admin, final String admingroupname) {
        AdminGroup returnval = null;
        final AdminGroupData agd = AdminGroupData.findByGroupName(entityManager, admingroupname);
        if (agd == null) {
            LOG.info("Can't get admingroup: " + admingroupname);
        } else {
            returnval = agd.getAdminGroup();
        }
        return returnval;
    }
View Full Code Here

Examples of org.ejbca.core.ejb.authorization.AdminGroupData

290
291
292
293
294
295
296
297
298
299
300
        if (LOG.isDebugEnabled()) {
            LOG.debug("Removing admin group " + admingroupname);
        }
        if (!(admingroupname.equals(AdminGroup.DEFAULTGROUPNAME))) {
            try {
                final AdminGroupData agl = AdminGroupData.findByGroupName(entityManager, admingroupname);
                if (agl == null) {
                    throw new FinderException("No Admin Group w name " + admingroupname);
                }
                removeEntitiesAndRulesFromGroup(agl);
                entityManager.remove(agl);
View Full Code Here

Examples of org.ejbca.core.ejb.authorization.AdminGroupData

314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
    @Override
    public void removeAccessRules(final Admin admin, final String admingroupname, final List<String> accessrules) {
        if (!admingroupname.equals(AdminGroup.DEFAULTGROUPNAME)) {
            try {
                final AdminGroupData agd = AdminGroupData.findByGroupName(entityManager, admingroupname);
                if (agd == null) {
                    throw new FinderException("Could not find admin group " + admingroupname);
                }
                agd.removeAccessRules(entityManager, accessrules);
                authTreeSession.signalForAuthorizationTreeUpdate();
                final String msg = INTRES.getLocalizedMessage("authorization.accessrulesremoved", admingroupname);
                logSession.log(admin, LogConstants.INTERNALCAID, LogConstants.MODULE_RA, new java.util.Date(), null, null,
                        LogConstants.EVENT_INFO_EDITEDADMINISTRATORPRIVILEGES, msg);
            } catch (Exception e) {
View Full Code Here

Examples of org.ejbca.core.ejb.authorization.AdminGroupData

336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
    @Override
    public void replaceAccessRules(final Admin admin, final String admingroupname, final Collection<AccessRule> accessrules) {
        if (!admingroupname.equals(AdminGroup.DEFAULTGROUPNAME)) {
            try {
                final AdminGroupData agdl = AdminGroupData.findByGroupName(entityManager, admingroupname);
                if (agdl == null) {
                    throw new FinderException("Could not find admin group " + admingroupname);
                }
                final Collection<AccessRule> currentrules = agdl.getAdminGroup().getAccessRules();
                final ArrayList<String> removerules = new ArrayList<String>();
                final Iterator<AccessRule> iter = currentrules.iterator();
                while (iter.hasNext()) {
                    removerules.add(iter.next().getAccessRule());
                }
                agdl.removeAccessRules(entityManager, removerules);
                agdl.addAccessRules(entityManager, accessrules);
                authTreeSession.signalForAuthorizationTreeUpdate();
                final String msg = INTRES.getLocalizedMessage("authorization.accessrulesreplaced", admingroupname);
                logSession.log(admin, LogConstants.INTERNALCAID, LogConstants.MODULE_RA, new java.util.Date(), null, null,
                        LogConstants.EVENT_INFO_EDITEDADMINISTRATORPRIVILEGES, msg);
            } catch (Exception e) {
View Full Code Here

Examples of org.ejbca.core.ejb.authorization.AdminGroupData

365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
 
    @Override
    public void renameAdminGroup(final Admin admin, final String oldname, final String newname) throws AdminGroupExistsException {
        if (!(oldname.equals(AdminGroup.DEFAULTGROUPNAME))) {
            boolean success = false;
            AdminGroupData agl = AdminGroupData.findByGroupName(entityManager, newname);
            if (agl == null) {
                try {
                    agl = AdminGroupData.findByGroupName(entityManager, oldname);
                    if (agl == null) {
                        throw new FinderException("Cant find admin group w name " + oldname);
                    }
                    agl.setAdminGroupName(newname);
                    authTreeSession.signalForAuthorizationTreeUpdate();
                    success = true;
                } catch (Exception e) {
                    LOG.error("Can't rename admingroup: ", e);
                }
View Full Code Here

Examples of org.ejbca.core.ejb.authorization.AdminGroupData

57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
   
    @Override
    public void addAdminEntities(final Admin admin, final String admingroupname, final Collection<AdminEntity> adminentities) {
        if (!admingroupname.equals(AdminGroup.DEFAULTGROUPNAME)) {
            try {
                final AdminGroupData agdl = AdminGroupData.findByGroupName(entityManager, admingroupname);
                if (agdl == null) {
                    String msg = INTRES.getLocalizedMessage("authorization.erroraddadmin", admingroupname);
                    msg += ". Admin group does not exist.";
                    LOG.info(msg);
                }         
                agdl.addAdminEntities(entityManager, adminentities);
                authTreeSession.signalForAuthorizationTreeUpdate();
                final String msg = INTRES.getLocalizedMessage("authorization.adminadded", admingroupname);
                logSession.log(admin, LogConstants.INTERNALCAID, LogConstants.MODULE_RA, new java.util.Date(), null, null,
                        LogConstants.EVENT_INFO_EDITEDADMINISTRATORPRIVILEGES, msg);
            } catch (Exception e) {
View Full Code Here
TOP
Copyright © 2018 www.massapi.com. All rights reserved.
All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.